Configuring pfsense Firewall Rules For Home [YouTube Release]

Additional Resources:

Official Netgate pfsense documentation on firewall rules

LTS Curated pfsense Tutorials

Getting Stared with pfsense firewall rules

How To Setup VLANS With pfsense & UniFI. Also how to build for firewall rules for VLANS in pfsense

Office Network Design and Planning with VLANs, LLDP, Rules, IoT, Guest using UniFi & pfsense

How To Setup pfsense OpenVPN Policy Routing With Kill Switch Using A Privacy VPN

Tutorial: pfsense Wireguard For Remote Access

Connecting With Us

Lawrence Systems Shirts and Swag



Amazon Affiliate Store

All Of Our Affiliates that help us out and can get you discounts!
:shopping_cart: Affiliates We Love - Lawrence Technology Services

Gear we use on Kit
:shopping_cart: Kit

Try ITProTV free of charge and get 30% off!
:shopping_cart: Learn technology and pass IT certifications with ITProTV

Use OfferCode LTSERVICES to get 10% off your order at

Digital Ocean Offer Code

HostiFi UniFi Cloud Hosting Service
:shopping_cart: HostiFi - UniFi cloud hosting

Protect you privacy with a VPN from Private Internet Access
:shopping_cart: Buy VPN with Credit Card or PayPal | Private Internet Access

:moneybag: lawrencesystems is creating Tech Tutorials & Reviews | Patreon

:stopwatch: Timestamps :stopwatch:
00:00 pfsense Home Firewall Rules
02:00 Devices & Networks
06:30 pfsense NAT rules
07:04 WAN Firewall Rules
08:16 IOT & LAN Rules

#pfsense #Firewall #Security

Many thanks, certainly wanting to look at pfsense again. Currently using Untangle / Sophos XG

Could you please share the benefits/reasons of routing traffic via a VPN provider?
The reasons that you made this decision, not general benefits.


A great video as always. I do have one question regarding blocking traffic between VLANs. Instead allowing all traffic and manually blocking traffic to each local network (VLAN) I usually create my main rule for internet traffic allowing all traffic to any destination that is NOT a LAN address in the RFC1918 Ranges.

This way I don’t have to manually block traffic to each local network. I always wonder if this is perhaps not the recommended way of creating the rules. Perhaps I should be making an allow any rule and an explicit block rule for each local network manually like in the video. I would be interested to hear peoples thoughts.

I have included a screenshot of my rules as an example where I have the alias !LAN_NETWORKS to allow any Internet traffic except LAN networks.

Tom you mentioned in your video that you don’t have port forwarding for Plex but use the VPN to access it. Can you use a VPN if you have other users on a firestick or roku that access my plex server from a remote location to the server?